Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140002.roa
File: AS140002.roa (raw, json)
Hash identifier: UkTXMdpGuoG4htiyKjxSXkGWbgKdAVrf5i3Gh64CutM=
Subject key identifier: A3:09:EB:2E:C4:76:7C:1D:66:FB:0B:67:10:37:FE:25:DF:46:B9:19
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 10FAC86831278E5B666D7A897091D69739DB3FCF
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140002.roa
Signing time: Tue 02 Jul 2024 21:00:00 +0000
ROA not before: Tue 02 Jul 2024 20:55:00 +0000
ROA not after: Tue 01 Jul 2025 21:00:00 +0000
asID: 140002
IP address blocks: 103.148.78.0/24 maxlen: 24
203.119.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:fa:c8:68:31:27:8e:5b:66:6d:7a:89:70:91:d6:97:39:db:3f:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 2 20:55:00 2024 GMT
Not After : Jul 1 21:00:00 2025 GMT
Subject: CN=A309EB2EC4767C1D66FB0B671037FE25DF46B919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:51:22:c7:0e:e1:46:d3:9a:ed:1f:e9:ff:17:
de:ce:b0:d1:ad:ea:57:24:47:a0:52:6b:2f:2c:f7:
f2:b6:01:90:6e:03:e1:37:99:16:8e:9d:13:40:e4:
67:76:ab:aa:e8:44:29:3a:3d:31:4e:6d:25:08:8d:
ea:21:cf:1b:e8:00:66:f6:25:7c:ea:b0:ea:91:10:
a0:a4:c2:2a:4b:77:c6:fa:ed:45:93:ca:64:c8:74:
06:d8:3f:80:dc:e3:91:42:c1:6d:8d:23:58:9a:7f:
88:2d:e4:8a:59:40:b0:82:d6:af:cc:b3:9f:0f:9c:
08:e7:da:a7:1d:ce:aa:51:95:7f:31:66:21:6c:bf:
27:aa:3c:8c:59:c5:78:55:ad:0e:b6:7b:cb:54:90:
87:fa:ed:7f:d0:6e:ed:ca:82:5c:ff:ae:91:ef:35:
26:1c:dd:54:1c:a5:97:39:04:9e:64:9c:fa:3d:fe:
b3:dd:ae:61:24:5b:75:3f:af:6a:17:b9:d0:a7:ec:
65:aa:cb:3e:97:30:5e:7a:f8:44:ab:8a:2a:bf:b3:
b9:f9:04:bb:35:98:45:90:58:d8:8a:e8:9a:5c:ce:
42:a4:13:4b:13:51:b6:4b:93:da:07:90:a1:49:39:
b6:2d:57:17:13:b4:75:cf:78:d0:88:16:a6:f0:8a:
02:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:09:EB:2E:C4:76:7C:1D:66:FB:0B:67:10:37:FE:25:DF:46:B9:19
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140002.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.148.78.0/24
203.119.13.0/24
Signature Algorithm: sha256WithRSAEncryption
50:e4:6a:80:44:84:f1:01:3f:a7:fe:be:ba:69:47:36:89:2f:
61:11:88:e6:63:88:a5:77:3e:b7:91:d3:a2:4c:5d:0f:bb:8b:
70:52:93:82:45:e6:66:e6:e7:53:e9:b4:c2:fa:1e:0e:a6:5c:
4b:c9:78:62:1e:cb:64:0c:2a:27:25:72:62:9d:96:1e:5c:1a:
87:40:d6:12:63:f5:23:39:3a:f0:76:2c:ee:f4:6d:c7:4c:00:
e8:42:64:02:ee:f4:05:de:d5:1d:0f:76:c7:01:8f:ad:e9:95:
ec:af:28:13:c4:e0:03:93:3e:6c:7e:1f:fa:dc:ae:da:6a:ff:
26:57:31:3f:a2:a8:2e:05:6f:f1:60:62:48:82:d0:2b:22:77:
77:29:6b:cc:48:2c:df:8a:b3:f9:e9:30:58:9e:47:ba:14:b7:
a1:46:9a:3d:3e:b7:aa:f1:5f:ad:00:8e:39:52:fa:eb:fb:fe:
30:3b:38:92:ff:fc:9b:65:35:8c:d4:aa:c4:75:5c:52:3d:ae:
58:6d:4d:dc:b7:15:a9:30:17:a1:e7:04:88:dc:87:66:38:bd:
de:7e:2c:82:32:6d:85:70:a9:6f:5c:5a:8c:f9:40:bd:1b:44:
ac:3d:d7:45:7c:e4:ac:3f:cc:8d:cd:28:8d:24:65:15:ad:80:
06:6e:b2:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:20:11 2025 by rpki-client